Overview
Cyber Security Compliance Analyst Jobs in Luton, England, United Kingdom at easyJet
Title: Cyber Security Compliance Analyst
Company: easyJet
Location: Luton, England, United Kingdom
Luton/HybridCompanyWhen it comes to innovation and achievement there are few organisations with a better track record. Join us and you’ll be able to play a big part in the success of our highly successful, fast-paced business that opens up Europe so people can exercise their get-up-and-go. With over 300 aircraft flying over 800 routes to more than 30 countries, we’re the UK’s largest airline, the second largest in Europe and the tenth largest in the world. Flying over 80 million passengers a year, we employ over 13,000 people. Its big-scale stuff and we’re still growing.
TEAMThe role situated in a team of cyber security professionals and working closely with the wider business to ensure that the principles of Digital Safety are as engrained as Aircraft Safety and that cyber security compliance is maintain in line with applicable legislation. The role requires working closely with the Cyber Security Compliance Manager, Cyber Security Compliance Officers, Cyber Security Risk and Assurance team, Cyber Security Vulnerability Management team, Cyber Security Engineers and Cyber Security Business Partner functions to support easyJet Cyber Security vision
Job Purpose
The Cyber Security Compliance Analyst is responsible for monitoring the compliance of easyJet against our internal policies and external requirements such as NIS Directive (CAA CAF) and PCI DSS. This will allow easyJet to track compliance on a continuous basis and ensure that all mandatory compliance reporting is met.
Additionally, the specialist is responsible for reporting against internal compliance objectives, polices and standards. This role requires collaboration with various business areas to ensure their understand and comply with regulatory requirements.
The Cyber Security Compliance Analyst supports the Digital Safety Assurance team’s objectives and assists in shedding light on key areas pertaining to our regulatory compliance and control maturity
Job Accountabilities
Monitor activities aligned with the compliance calendar for PCI DSS and aviation regulations, including managing Attestation of Compliance from partners, overseeing internal and external scan reports, penetration testing reports, and coordinating remedial actions.
Overseeing our annual audit and conduct regular mock audits to ensure compliance with PCI DSS standard.
Gather evidence from the control owners and information asset registers to compile internal compliance reports.
Oversee the tracking, management, and reporting of control adherence, and identify and report any compliance gaps.
Update and maintain compliance reporting metrics.
Prepare documentation and materials for both internal and external auditors.
Provide subject matter expertise for projects affecting easyJet’s compliance, ensuring regulatory requirements are met.
Develop materials to support compliance efforts for our regulators.
Provide education and guidance to colleagues outside of easyJet Cyber Security Compliance team on the airline compliance obligations fostering a companywide understanding of compliance landscape.
Key Skills & Behaviours Required
Has sufficient communication skills for effective dialogue with customers, suppliers and partners.
Is able to work in a team. Is able to plan, schedule and monitor own work within short time horizons. Demonstrates a rational and organised approach to work.
Understands and uses appropriate methods, tools and applications.
Identifies and …
